SecurityBrief UK - Technology news for CISOs & cybersecurity decision-makers
Story image

Rapid7 expands MXDR service to better support AWS users

Yesterday

Rapid7 has announced the expansion of its Managed Extended Detection and Response (MXDR) service to include enhanced support for Amazon Web Services (AWS) environments.

This expansion of the MXDR service provides organisations with stronger cloud detection and response capabilities through the integration of cloud native telemetry, AWS security telemetry, and the advanced detection measures available within the Rapid7 Command Platform.

Delivered by the company's security operations centre (SOC), the service aims to facilitate wider and more efficient threat detection and remediation.

AWS is extensively used by over two million companies worldwide, necessitating the adaptation of security programmes to manage increasingly dynamic workloads as these organisations grow their presence in the cloud. Rapid7's MXDR service offers continuous coverage, with threat detection and response specifically tailored to handling different AWS environments, thus negating the need for overseeing multiple security tools.

Craig Adams, Chief Product Officer at Rapid7, commented on the service expansion, saying, "Rapid7's MXDR support for AWS provides organisations with a comprehensive approach to securing their cloud environments, which is critical for security teams working to manage, prioritise, and respond to risk across their entire attack surface."

He further elaborated, "By integrating AWS-native telemetry with Rapid7's native advanced detection and response capabilities, MXDR delivers the context and coverage needed to handle complex threats in AWS environments."

Rapid7's direct support for AWS environments will offer enhanced threat detection and contextualised alerts, which correlate AWS telemetry with global threat intelligence to identify sophisticated attacks and lateral movements within cloud settings.

The service's proactive threat hunting and 24/7 monitoring by Rapid7's SOC aim to minimise detection and response times, thereby easing operational demands on organisations.

The service also includes cloud identity and privilege monitoring, which keeps track of unusual identity behaviours, privilege escalations, and questionable API activities to prevent unauthorised access.

This is complemented by AI-assisted context, which enriches cloud alerts with risk-aware information for faster and more precise incident triage and response.

The inclusion of AWS support is said to strengthen Rapid7 MXDR's capability to deliver unified security coverage spanning major cloud providers, including Azure and Google Cloud. It also allows for integration with existing technological frameworks utilised by customers, such as Microsoft security tools.

Follow us on:
Follow us on LinkedIn Follow us on X
Share on:
Share on LinkedIn Share on X